Senior Cyber Security Engineer (Assurance)
£450 - £575/day DOE - OUT OF SCOPE OF IR35
Location: Flexible (with weekly visits to 2 sites)
Contract: 12 Months | Sector: Rail Infrastructure & Operational Technology
Protect Critical Rail Infrastructure. Be a part of the solutions.
Are you a Senior Cyber Security Engineer passionate about making a tangible impact in the real world? Do you thrive on building security into complex Operational Technology (OT) systems that keep a nation moving?
A global leader in transport solutions, is looking for a Senior Cyber Security Engineer (Assurance) to join our Communication and Information Systems (CIS) team. This is your chance to play a pivotal role in securing the next generation of rail signalling, control systems, and station networks that millions depend on every day.
Your Mission: Engineer Trust & Resilience.
You will be the technical authority for cyber security assurance across the entire project lifecycle—from bid to commissioning. In this senior role, you will architect secure solutions, define security postures, and lead assurance activities to meet stringent industry standards, ensuring our rail infrastructure is safe, resilient, and trusted.
What You'll Bring:
*
* Proven Expertise: Significant experience leading security engineering in demanding Operational Technology (OT) environments, ideally within rail, energy, or critical national infrastructure.
* Standards Mastery: Hands-on, practical experience applying the IEC 62443 series of standards. Knowledge of CENELEC standards is highly advantageous.
* Leadership & Influence: Excellent communication skills with a proven ability to influence internal and external stakeholders. Experience in mentoring other engineers.
* Professional Credentials: A degree in an engineering, scientific, or numerate discipline. Hold or be working towards relevant certifications (e.g., CISSP, CSSLP, CCP).
* Holistic Lifecycle View: A track record of embedding security across the full engineering lifecycle—from concept and design through to testing, deployment, and support.
What You'll Be Doing:
*
* Lead Assurance & Strategy: Engage with client security teams to shape strategy and risk appetite. Develop and own Cyber Security Management Plans.
* Architect Secure Systems: Design secure architectures using zoning (IEC 62443) and define critical security controls for rail signalling, SCADA, and control systems.
* Manage Risk & Compliance: Conduct threat and risk analyses (TRA). Specify security requirements and ensure compliance with standards like IEC 62443, TS 50701, NIS/NIS2, and EU CRA.
* Own Verification & Validation: Oversee security testing, review assurance artefacts, and lead or coordinate penetration testing activities to validate system security.
* Drive Security Culture: Mentor project teams, represent security at stage-gate reviews, and lead lessons-learned sessions to foster continuous improvement.
This is more than a contract role; it’s an opportunity to leave your mark on essential national infrastructure. You’ll be part of a market leader dedicated to complete mobility, working with cutting-edge technology in a role where your expertise directly contributes to public safety and service resilience.
Interested?
Please contact l i n d a. d a v i s o n or call for a Confidential chat on (phone number removed).
The partnering concept promoted by Vital means that we work together with candidates and clients
to achieve your career and recruitment objectives. For clients the result is cost effective, culture-compatible solutions that make staff selection, recruitment and retention far easier.
For candidates it means a personal and professional relationship that will help you through every stage of obtaining your ideal job and pursuing your career goals.
Our commitment to both candidates and clients is equalled only by our professionalism and dedication to providing the best possible service